Dell

Emc Avamar Server

11 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.7

CVE-2021-36317

  • EPSS 0.04%
  • Published 21.12.2021 17:15:08
  • Last modified 21.11.2024 06:13:29

Dell EMC Avamar Server version 19.4 contains a plain-text password storage vulnerability in AvInstaller. A local attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to...

6.7

CVE-2021-36318

  • EPSS 0.06%
  • Published 21.12.2021 17:15:08
  • Last modified 21.11.2024 06:13:29

Dell EMC Avamar versions 18.2,19.1,19.2,19.3,19.4 contain a plain-text password storage vulnerability. A high privileged user could potentially exploit this vulnerability, leading to a complete outage.

7.2

CVE-2021-36316

  • EPSS 0.23%
  • Published 21.12.2021 17:15:07
  • Last modified 21.11.2024 06:13:29

Dell EMC Avamar Server versions 18.2, 19.1, 19.2, 19.3, and 19.4 contain an improper privilege management vulnerability in AUI. A malicious user with high privileges could potentially exploit this vulnerability, leading to the disclosure of the AUI i...

6.1

CVE-2020-5329

  • EPSS 0.2%
  • Published 29.07.2021 16:15:08
  • Last modified 21.11.2024 05:33:55

Dell EMC Avamar Server contains an open redirect vulnerability. A remote unauthenticated attacker may exploit this vulnerability to redirect application users to arbitrary web URLs by tricking the victim users to click on maliciously crafted links.

10

CVE-2020-5341

  • EPSS 12.71%
  • Published 28.07.2021 00:15:07
  • Last modified 21.11.2024 05:33:56

Deserialization of Untrusted Data Vulnerability Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2, 19.1 and 19.2 and Dell EMC Integrated Data Protection Appliance versions 2.0, 2.1, 2.2, 2.3, 2.4 and 2.4.1 contain a Deserialization of Untrust...

8.2

CVE-2019-3752

  • EPSS 0.38%
  • Published 16.07.2021 22:15:07
  • Last modified 21.11.2024 04:42:27

Dell EMC Avamar Server versions 7.4.1, 7.5.0, 7.5.1, 18.2 and 19.1 and Dell EMC Integrated Data Protection Appliance (IDPA) versions 2.0, 2.1, 2.2, 2.3 and 2.4. contain an XML External Entity(XXE) Injection vulnerability. A remote unauthenticated mal...

8.1

CVE-2021-21511

  • EPSS 0.15%
  • Published 15.02.2021 22:15:13
  • Last modified 21.11.2024 05:48:30

Dell EMC Avamar Server, versions 19.3 and 19.4 contain an Improper Authorization vulnerability in the web UI. A remote low privileged attacker could potentially exploit this vulnerability, to gain unauthorized read or modification access to other use...

9.8

CVE-2020-29493

  • EPSS 5.8%
  • Published 14.01.2021 21:15:13
  • Last modified 21.11.2024 05:24:06

DELL EMC Avamar Server, versions 19.1, 19.2, 19.3, contain a SQL Injection Vulnerability in Fitness Analyzer. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to the execution of certain SQL commands on the appl...

8.7

CVE-2020-29494

  • EPSS 0.96%
  • Published 14.01.2021 21:15:13
  • Last modified 21.11.2024 05:24:06

Dell EMC Avamar Server, versions 19.1, 19.2, 19.3, contain a Path Traversal Vulnerability in PDM. A remote user could potentially exploit this vulnerability, to gain unauthorized write access to the arbitrary files stored on the server filesystem, ca...

10

CVE-2020-29495

  • EPSS 15.49%
  • Published 14.01.2021 21:15:13
  • Last modified 21.11.2024 05:24:06

DELL EMC Avamar Server, versions 19.1, 19.2, 19.3, contain an OS Command Injection Vulnerability in Fitness Analyzer. A remote unauthenticated attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on...